I&#039;m working on a management section of an online store.<BR><BR>When requesting the pages which deal with orders and customers, I&#039;m using SSL. <BR><BR>In contrast, I&#039;m not using it when maintaining products, categories and postage costs because I figure that this information is readily available from the public store front anyway. Thus what is the point of encrypting it?<BR><BR>However, in sending updates and inserts across in plain text, does this faciliate a hacker in making their own updates after examining the format of the data required to do an update?<BR><BR>For example, they might update a product so that it has a reduced cost and then buy it and hope nobody noticed.<BR><BR>In this case, would it be a good idea to use SSL everywhere in the management section?<BR><BR>Cheers,<BR><BR>Ian.